CVE-2007-2918

Logitech VideoCall - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2007-2918. PoCs published by Metasploit, MC, including Metasploit module exploits/windows/browser/logitechvideocall_start.

AI-analyzed exploit summary This Metasploit module exploits a stack buffer overflow in the Logitech VideoCall ActiveX Control (wcamxmp.dll 2.0.3470.448) via an overly long string passed to the Start() method, allowing arbitrary code execution.

Description

Multiple stack-based buffer overflows in ActiveX controls (1) VibeC in (a) vibecontrol.dll, (2) CallManager and (3) ViewerClient in (b) StarClient.dll, (4) ComLink in (c) uicomlink.dll, and (5) WebCamXMP in (d) wcamxmp.dll in Logitech VideoCall allow remote attackers to cause a denial of service (browser crash) and execute arbitrary code via unspecified vectors.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16511

This Metasploit module exploits a stack buffer overflow in the Logitech VideoCall ActiveX Control (wcamxmp.dll 2.0.3470.448) via an overly long string passed to the Start() method, allowing arbitrary code execution.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Logitech VideoCall ActiveX Control (wcamxmp.dll 2.0.3470.448)
No auth needed
Prerequisites: Target must have the vulnerable ActiveX control installed and enabled in Internet Explorer
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
by MC · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/logitechvideocall_start.rb

This Metasploit module exploits a stack buffer overflow in the Logitech VideoCall ActiveX Control (wcamxmp.dll 2.0.3470.448) via an overly long string passed to the 'Start()' method, allowing arbitrary code execution. It generates a malicious HTML page with embedded JavaScript to trigger the vulnerability.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Logitech VideoCall ActiveX Control (wcamxmp.dll 2.0.3470.448)
No auth needed
Prerequisites: Victim must visit a malicious webpage hosting the exploit · Target system must have the vulnerable ActiveX control installed
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (10)

Core 10
Core References
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/330289
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/36821
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25514
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/36820
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/36824
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/34658
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/24254
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/2018
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/36822
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/36823

Scores

EPSS 0.3406
EPSS Percentile 98.2%

Details

Status published
Products (1)
logitech/videocall
Published Jun 01, 2007
Tracked Since Feb 18, 2026